Sign-up

ID

VAR-201907-1065


CVE

CVE-2017-8405


TITLE

D-Link DCS-1130 and DCS-1100 Authentication vulnerabilities in devices

Trust: 0.8

sources: JVNDB: JVNDB-2017-014556

DESCRIPTION

An issue was discovered on D-Link DCS-1130 and DCS-1100 devices. The binary rtspd in /sbin folder of the device handles all the rtsp connections received by the device. It seems that the binary loads at address 0x00012CF4 a flag called "Authenticate" that indicates whether a user should be authenticated or not before allowing access to the video feed. By default, the value for this flag is zero and can be set/unset using the HTTP interface and network settings tab as shown below. The device requires that a user logging to the HTTP management interface of the device to provide a valid username and password. However, the device does not enforce the same restriction by default on RTSP URL due to the checkbox unchecked by default, thereby allowing any attacker in possession of external IP address of the camera to view the live video feed. The severity of this attack is enlarged by the fact that there more than 100,000 D-Link devices out there. D-Link DCS-1130 and DCS-1100 The device contains an authentication vulnerability.Information may be obtained. The D-LinkDCS-1100 and D-LinkDCS-1130 are both network cameras from D-Link Corporation of Taiwan, China. A cross-site request forgery vulnerability exists in D-LinkDCS-1130 and DCS-1100 due to the fact that the program did not perform an authentication check by default. An attacker could use this vulnerability to view images taken by the camera

Trust: 2.34

sources: NVD: CVE-2017-8405 // JVNDB: JVNDB-2017-014556 // CNVD: CNVD-2019-23338 // VULHUB: VHN-116608 // VULMON: CVE-2017-8405

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

category:['camera device']sub_category:camera

Trust: 0.1

sources: OTHER: None // CNVD: CNVD-2019-23338

AFFECTED PRODUCTS

vendor:d linkmodel:dcs-1130scope: - version: -

Trust: 1.4

vendor:d linkmodel:dcs-1100scope: - version: -

Trust: 1.4

vendor:dlinkmodel:dcs-1130scope:eqversion: -

Trust: 1.0

vendor:dlinkmodel:dcs-1100scope:eqversion: -

Trust: 1.0

sources: CNVD: CNVD-2019-23338 // JVNDB: JVNDB-2017-014556 // NVD: CVE-2017-8405

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-8405
value: HIGH

Trust: 1.0

NVD: CVE-2017-8405
value: HIGH

Trust: 0.8

CNVD: CNVD-2019-23338
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201907-127
value: HIGH

Trust: 0.6

VULHUB: VHN-116608
value: MEDIUM

Trust: 0.1

VULMON: CVE-2017-8405
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-8405
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

CNVD: CNVD-2019-23338
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-116608
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-8405
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2017-8405
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2019-23338 // VULHUB: VHN-116608 // VULMON: CVE-2017-8405 // JVNDB: JVNDB-2017-014556 // CNNVD: CNNVD-201907-127 // NVD: CVE-2017-8405

PROBLEMTYPE DATA

problemtype:CWE-287

Trust: 1.9

sources: VULHUB: VHN-116608 // JVNDB: JVNDB-2017-014556 // NVD: CVE-2017-8405

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201907-127

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201907-127

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-014556

PATCH
title:Top Pageurl:https://www.dlink.com/en/consumer
Trust: 0.8
title:IoT_vulnerabilitiesurl:https://github.com/ethanhunnt/IoT_vulnerabilities 
Trust: 0.1
sources:
            
            
            VULMON: CVE-2017-8405 // 
            
            
            
            JVNDB: JVNDB-2017-014556

EXTERNAL IDS
db:NVDid:CVE-2017-8405
Trust: 3.4
db:PACKETSTORMid:153226
Trust: 1.9
db:JVNDBid:JVNDB-2017-014556
Trust: 0.8
db:CNNVDid:CNNVD-201907-127
Trust: 0.7
db:CNVDid:CNVD-2019-23338
Trust: 0.6
db:OTHERid:NONE
Trust: 0.1
db:VULHUBid:VHN-116608
Trust: 0.1
db:VULMONid:CVE-2017-8405
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2019-23338 // 
            
            
            
            VULHUB: VHN-116608 // 
            
            
            
            VULMON: CVE-2017-8405 // 
            
            
            
            JVNDB: JVNDB-2017-014556 // 
            
            
            
            PACKETSTORM: 153226 // 
            
            
            
            CNNVD: CNNVD-201907-127 // 
            
            
            
            NVD: CVE-2017-8405

REFERENCES
url:https://github.com/ethanhunnt/iot_vulnerabilities/blob/master/dlink_dcs_1130_security.pdf
Trust: 2.6
url:http://packetstormsecurity.com/files/153226/dlink-dcs-1130-command-injection-csrf-stack-overflow.html
Trust: 2.4
url:https://nvd.nist.gov/vuln/detail/cve-2017-8405
Trust: 2.1
url:https://seclists.org/bugtraq/2019/jun/8
Trust: 1.8
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-8405
Trust: 0.8
url:https://ieeexplore.ieee.org/abstract/document/10769424
Trust: 0.1
url:https://cwe.mitre.org/data/definitions/287.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://github.com/ethanhunnt/iot_vulnerabilities
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8408
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8413
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8406
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8410
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8412
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8409
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8415
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8417
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8404
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8416
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8411
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8407
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-8414
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2019-23338 // 
            
            
            
            VULHUB: VHN-116608 // 
            
            
            
            VULMON: CVE-2017-8405 // 
            
            
            
            JVNDB: JVNDB-2017-014556 // 
            
            
            
            PACKETSTORM: 153226 // 
            
            
            
            CNNVD: CNNVD-201907-127 // 
            
            
            
            NVD: CVE-2017-8405

CREDITS
Mandar Satam
Trust: 0.1
sources:
            
            
            PACKETSTORM: 153226

SOURCES
db:OTHERid: - 
db:CNVDid:CNVD-2019-23338
db:VULHUBid:VHN-116608
db:VULMONid:CVE-2017-8405
db:JVNDBid:JVNDB-2017-014556
db:PACKETSTORMid:153226
db:CNNVDid:CNNVD-201907-127
db:NVDid:CVE-2017-8405

LAST UPDATE DATE
2025-01-30T19:58:02.875000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2019-23338date:2019-07-19T00:00:00
db:VULHUBid:VHN-116608date:2019-07-09T00:00:00
db:VULMONid:CVE-2017-8405date:2021-04-23T00:00:00
db:JVNDBid:JVNDB-2017-014556date:2019-07-10T00:00:00
db:CNNVDid:CNNVD-201907-127date:2021-04-25T00:00:00
db:NVDid:CVE-2017-8405date:2024-11-21T03:33:58.197

SOURCES RELEASE DATE
db:CNVDid:CNVD-2019-23338date:2019-07-18T00:00:00
db:VULHUBid:VHN-116608date:2019-07-02T00:00:00
db:VULMONid:CVE-2017-8405date:2019-07-02T00:00:00
db:JVNDBid:JVNDB-2017-014556date:2019-07-10T00:00:00
db:PACKETSTORMid:153226date:2019-06-07T15:06:02
db:CNNVDid:CNNVD-201907-127date:2019-07-02T00:00:00
db:NVDid:CVE-2017-8405date:2019-07-02T20:15:10.870